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(54) System for controlling different conditional access systems sending video, audio and data 
services and a receiver to be used In the system 



(57) The present invention relates to a system for 
controlling different conditional access systems sending 
video, audio and data services to the receivers entitled 
to receive said services, wherein each conditional 
access system encrypts the service to be transmitted, 
sends encrypted the decryption keys required in the 
receiver and sends the authorization messages. At least 
one of the conditional access systems is nominated to 
control system entitled to control the encryption algo- 
rithms used by other conditional access systems and the 
sending of keys and authorization messages, whereby 
the control system can change rights of use of other con- 
ditional access systems in the receiver. The invention 
also relates to a receiver to be used in the system, con- 
sisting of a decoder (51) for receiving video, audio and 
data services and for decrypting the encryption, said 
decoder including tables (53) relating to the different con- 
ditional access systems, each of the tables including an 
algorithm list (55) used by the conditional access system, 
said list including the encryption algorithms in use for 
encryption of the messages and services of the condi- 
tional access system. Further, the decoder (51) com- 
prises a control table (54) of the conditional access 
systems including a list of the control systems. In order 
to get the encryption information the receiver can be 
equipped with a releasable security module (52) the 
tables of which have the same kind of structure as the 
decoder (51). 
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Description 

The present invention concerns a system for con- 
troHing different conditional access systems sending 
video, audio and data services to the receivers entitled 
to receive said services, wherein each conditional 
access system encrypts the service to be transmitted, 
sends encrypted the decryption keys required in the 
receiver and serds the authorization messages. The 
invention also concerns a receiver to be used in the sys- 
tem. 

For transmission of digital video, audio and data sig- 
nals it is possible to use either a transmission through 
air, satellite connection, cable television network, tele- 
phone/telenetwork or optical cable network, where dig- 
ital information is transmitted to a large number of 
receivers. The digital information in question is often 
meant for free use of all receivers, but on the other hand, 
methods are required for controlling who/which of the 
receivers can get the information. This kind of transmis- 
sion system has two lines of action in principle: 

1) digital information is transmitted according to a 
predetermined plan, whereby each receiver can, 
either before or during the transmission, express 
his/her willingness to receive the information in 
question; 

2) digital information is transmitted only in case 
some of the receivers expresses his/her willingness 
to receive this information. 

In the latter case it is also possible to let others than 
the orderer to receive the information in question, so that 
these other receivers can have a previously agreed right 
to receive the transmission or they can order it during the 
transmission or while waiting it to be started. As in this 
kind of digital signal transmission the unauthorized 
receiving is wished to be prevented, the bit stream is 
changed in a form, where the receivers have no chance 
to decrypt the contents of the transmitted data, except if 
they have the use of the keys required for decrypting the 
data. There are numerous methods available for encryp- 
tion of the digital bit stream, and the systems using them 
should be as complicated and secure as possible, in 
order to make sure that eventual unauthorized data 
decryption efforts after the introduction of the system will 
not be succesful. 

An essential part of the transmission of digital video 
signals is the transmission of audiosignals and in addi- 
tion, when implementing the systems there also has to 
be the so called control data transmitted. In order to 
diversify the services, it is necessary for different appli- 
cations in the future also to send data information that 
from the point of view of the transmission system can 
include almost any kind of information. All these parts of 
information should be, at least where applicable, trans- 
mitted encrypted so as to make sure that only the 
selected receivers can receive the information. 
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The digital television systems of the future provide 
transmission of several programs simultaneously in one 
and the same transport channel. In that case the signal 
to be transmitted is in the packet form and packets includ- 

5 ing audio and video information of different programs 
travel in turn in the transport channel. Several compres- 
sion standards have been developed for transmitting 
video, audio and data signals as packets, one of which 
is MPEG-2 (Moving Picture Experts Group). This stand- 

w ard has been created by a joint working team of ISO 
(International Standards Organisation) and lEC (Interna- 
tional Electrotechnical Commission). Various MPEG 
standards have been developed and according to the 
specifications determined by them e.g. transmission of 

15 information is accomplished in several different applica- 
tions in the future. As for the standard a reference is 
made to the MPEG standard ISO/IEC 13818 known in 
the art. Accordingly, the coded video, audio arxl data 
information is packetized in so called PES packets (Pack- 

20 etized Elementary Stream). A packet, the length of which 
can vary, includes a header and a data part. 

Figure 1 illustrates the construction of a PES packet. 
The header of the packet consists of the packet start 
code prefix, the stream ID. indication of the packet length. 

25 Optional header and a number of stuffing bytes. After that 
follows the information part of the packet including data 
bytes, which part, as mentioned earlier, can include a 
block of coded audio, video or data signals of the pro- 
gram, one packet, however, including only one kind of 

30 signals. The length of one packet can be several kilo- 
bytes. 

The MPEG standard determines two different types 
of bit stream forms: 

1) Program Stream and 2) Transport Stream. The pro- 

35 gram stream includes a coded video and audio signal as 
above mentioned PES packets (Packetized Elementary 
Stream), each of which includes respectively a coded 
block of bit stream of a particular size, in other words, the 
video, audio and data signal of the program source are 

40 separately coded and cut into blocks of particular 
lengths, each of which is placed in the information part 
of the PES packet. The length of the blocks and thus the 
length of the PES packet can vary Thus the video signal 
of the program consists of successive video PES pack- 

45 ets, the audiosignal of successive audio PES packets, 
etc. e.g. all the information of a movie can be recorded 
as a program stream. 

Figures 2a and 2b illustrate how the PES packets of 
figure 1 are placed as program stream packets. The pro- 

50 gram stream, figure 2a, consists of successive packets 
including a header of the packet and an information part 
PACK. Figure 2b showing the structure of one program 
stream packet, the so called packet layer, illustrates, that 
the program stream packet PACK includes several PES 

55 packets marked with #1 , #2, ...,#n. that can include pic- 
ture, voice, data etc. relating to the program. For clarity 
it can be demonstrated that the packet sequence of fig- 
ure 2a illustrates e.g. one movie, the PES packetized 
audio and video signals of which are placed in the infor- 
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mation parts of the program stream packets. The pro- 
gram stream ends with the end code "program end 
code". 

When sending the information of a program source 
to the transmission path there has to be formed a so 5 
called transport stream, that is meant for transmitting 
video and audiosignals on a transmission path like a tel- 
evision broadcast, satellite, cable TV, telephone/tele 
cables, optical cables etc. If the program source is a 
record in a form of the program stream, e.g. a movie io 
recorded on a CD-record, the program stream is first 
demultiplexed to separate audio, video and data PES 
packets. In case the program source sends audio, video 
and data signals, they will be decrypted and formed to 
PES packets. Regardless of the type of the source, the is 
thus formed PES packets are placed in the transport 
stream. The structure of the transport stream is illus- 
trated in figures 3a and 3b. The transport stream consists 
of transport stream packets of a fixed size of e.g. 188 
bytes, figure 3a. The packet includes a header of varied 20 
length and a data part called payload including payload 
information. Figure 3b illustrates the construction of one 
transport stream packet. The header of the packet com- 
prises 9 fields, the last of which is the so called adapta- 
tion field. Bytes of the PES packet are placed in the 25 
payload of the packet. 

Every system within the range of the digital signal 
transmission has in common the encryption of the digital 
signals, wherein the video, audio and data information 
included in the digital bit stream is first encrypted in an 30 
encryption device and then decrypted in a receiving 
device. Essential for the use of each system is the Con- 
ditial Access System serxJing control data encrypted to 
the receivers, the control data being used for sending 
receiving rights to the receivers and for sending keys 35 
relating to the bit streams. Several conditional access 
systems and, consequently, several different encryption 
algorithms to be used for transmission of their control 
data can be in use, and further, one and the same con- 
ditional access system can use several different algo- 40 
rithms for encrypting the control data. In general one 
program supplier uses only one conditional access sys- 
tem, but authorizing messages and key distribution mes- 
sages of other conditional access systems (practically 
those of other program suppliers), can be attached 45 
thereto, and the encryption of the service is made by only 
one conditional access system and the used keys are 
told to other systems, so that they can send the keys 
encrypted with their own encryption algorithms. From the 
receiver's point of view it is usual that several different so 
conditional access systems offer their services to one 
and the same receiver. Thus the receiver is able to 
receive services from several different program suppli- 
ers, because authorizing messages and key distribution 
messages controlled by several different conditional 55 
access systems have been received. 

Thus the above mentioned conditional access sys- 
tem means practically a conditional access system of 
any pay-TV system providing programs and other serv- 
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ices against payment to paying customers, so that on 
one hand rights of use can be safely given to all prospec- 
tive customers and on the other hand it is possible to 
prevent receivers not having ordered and not willing to 
order said rights of use from receiving the services in 
question. Thus, the operation of the conditional access 
system, hereafter called the CA system, comprises as 
essential parts the following functions: 

1 . Encryption of the transmitted service subject to a 
charge. 

2. Transmission of the keys required for decrypting 
the encrypted service. 

3. Transmission of authorization messages to the 
receivers. 

For decrypting the service transmitted against pay- 
ment the decryption keys have to be sent safely to the 
orderer. so that the messages transmitting the required 
keys are encrypted with the algorithms used by the CA 
system. These algorithms are different from those used 
for encryption of the actual service, in other words the 
packets of video, audio and data transport stream. The 
authorization message means that the receivers are 
Informed respectively through the so called authorization 
messages distributed to all receivers about the programs 
that the receiver can decrypt. This information is individ- 
ual for each receiver, so that any kind of a sortiment of j 
services to be received can be sent to each receiver. On ^ 
the other hand, the receivers can be grouped so that a 
whole group of receivers gets the authorization with the 
same authorization message. Information included in the 
authorization messages has an individual code for each 
service which has to correspond to the code transmitted ., = ... 

together with the keys, so as to make sure that the g 
authorization is valid. The authorization messages can ^ 
be sent individually because the decoder of each 
receiver has its own individual address number. - 

As due to the fast speed the encryption of the bit 
streams is a microcircuit implementation and can't be 
implemented with present-day technology through a pro- 
gram, it is in many cases profitable to implement the 
encryption on the bit stream level by using for different 
conditional access systems one and the same encryp- 
tion algorithm, so that the encryption devices and 
decryption devices for different conditional access sys- 
tems are at the hardware level in this respect the same. 
When receiving programs of several different conditional 
access systems there are numerous problems. Whether 
or not the encryption on the bit stream level is the same 
for all digital signals, very soon in the future it will be the 
fact, anyway, that the transmission of digital signals is 
controlled by a great number of independent conditional 
access systems, each using several different algorithms 
of the control data, because of updatings and versions. 
It is true that each conditional access system has in gen- 
eral one characteristic way of transmitting the control 
data, but there can be several different versions of it. It 
is also possible, not very often practiced, however, that 
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one conditional access system has several algorithms in 
use for transmitting the control data. 

For security reasons it is used in known systems 
smart cards including the encryption keys for decrypting 
the data, the meaning of which is to act as so called con- 5 
trolled means to receive services transmitted encrypted 
and against payment. In general there are several offer- 
ers of services, so that there have to be several smart 
cards used either simultaneously or by changing the 
smart card. One smart card is generally activated to w 
receive a service at a time and others can act only as 
receivers of information or be ready and waiting to be 
activated, when the respective service is selected from 
the receiver. Smart cards are reliable because their con- 
struction is very difficult or even impossible to be copied is 
or misused. The term "smart card" means at the moment 
a card that includes one microprocessor circuit to be con- 
nected with the device itself through a serial line. The 
device supplies the electricity and the clock signal (oscil- 
lator) to the smart card in addition to the RESET signal. 20 
In the future there will surely be produced also smart 
cards with several circuits where the connection with the 
device itself is more complicated including e.g. a parallel- 
type connection. 

In the above described situation the problem will be. 25 
how to solve the need to control uniquely the control data 
algorithms used by a certain conditional access system 
as well as the possibilities of different conditional access 
systems to give receiving rights or correspondingly keys 
for encrypted bit streams. This kind on need arises when 30 
wanting to prevent unauthorized receiving of encrypted 
digital signals, that could be based e.g. on an illegal dis- 
tribution of receiving rights or keys or on the use of a 
poorly planned encryption algorithm of the control data, 
that for some reason can be used more widely than what 35 
had been planned also for passing the future algorithms 
or for decrypting the encryption at least partly. On the 
other hand, the market situation can sometimes lead to 
a situation, where a program supplier sells his own digital 
services by compensating the prices or rents of the 40 
receiving devices, and thus wants to make sure that any 
other program supplier can't use the receivers in ques- 
tion to distribute his own services - at least not without 
payment. In this kind of situation it will be necessary to 
control the use of the receiver, from the point of view of 45 
the program supplier who compensated the price or rent 
of the receiver. It is also possible that from some other 
quarter the program and algorithm data in headers of the 
transport stream packets of the conditional access sys- 
tem used by the program supplier is copied and pro- so 
grams will be sent illegally. This should preferably be 
prevented. 

Using smart cards to minimize the security risks is 
also problematic. With respect to connections they are 
standardized and thus easily distributed to the receivers ss 
e.g. by mail. In this way the card can fall into the wrong 
hands and the information thereof can be copied and 
used to unauthorized receiving of services. 
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An object of this invention is to establish a system 
where the above mentioned problems caused by the use 
of many different conditional access systems can be 
solved. It is an object to create above the conditional 
access systems a system that determines for which pur- 
pose the receiver can be used and for which not. 

Characteristic for the system is that at least one con- 
ditional access system has been nominated to control 
system entitled to control the encryption algorithms used 
by other conditional access systems and the sending of 
keys and authorization messages, whereby the control 
system can change rights of use of the other conditional 
access systems in the receiver. The receiver to be used 
in the system and including means for receiving 
encrypted video, audio and data services and for 
decrypting the encryption, is characterized in that said 
means include - tables relating to the different conditional 
access systems, each of the tables including an algo- 
rithm list used by the conditional access system, said list 
including the encryption algorithms in use for encrypting 
the messages and services of the conditional access 
system, 

a control table of the conditional access systems 
including a list of the control systems. 

The system above the conditional access systems 
according to the present invention is one or several con- 
ditional access system(s) getting more rights than the 
other conditional access systems, in other words it gets 
the right to control the rights and ways of use of the other 
conditional access systems. The system is hereafter 
called the control system. 

As it can be appreciated from what has been stated 
above, the access management of the receivers can be 
divided into two parts: 1 ) management of the control data 
algorithms and 2) management of the conditional access 
systems. Thus, the present invention concerns a control 
system for managing the conditional access systems in 
respect of their characteristics. Both of the above men- 
tioned fields of access management can be considered 
to be controlled at least on four principles: 1) by the 
number of the decoder. 2) by the code of the conditional 
access system. 3) by a combination of the above men- 
tioned and 4) by a list of different control mechanisms. 
As the code of the conditional access system according 
to the proposal for a standard will comprise 256 alterna- 
tives for each conditional access system including even- 
tual future variation of the conditional access system or 
the subsystems thereof, the control system of the 
receiver can be directed to ail the 256 alternatives of a 
conditional access system, and subsystems of the con- 
ditional access system or each conditional access sys- 
tem can be equipped with a necessary mask word by 
which the subsystems of one conditional access system 
can be identified. Further, the receiver can have a list for 
different conditional access systems, including the 
above mentioned variations for each conditional access 
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system or, correspondingly, a list of those conditional 
access systems that the receiver is not allowed to use. 

The control system in accordance with the present 
invention can be made reliable so that the control of con- 
ditional access systems can not be effected uncontrolla- 5 
biy, in other words, when manufacturing the device there 
will be determined the basic criteria by which the control 
system in future can be controlled- In the simpliest way, 
according to the first embodiment of the present inven- 
tion, the control of the access system can be directed io 
plainly to that code/those codes of the conditional access 
system, that is/are in use of the device supplier or his 
customer, and the rights of use in question can't be 
changed afterwards, unless the receiver were opened 
and the part in charge of the access rights replaced by is 
a new one. In other words, when manufacturing the 
receiver it will be equipped with a list of the codes of the 
conditional access system or systems that have the right 
to control rights of use of the other corditional access 
systems. 20 

According to an other embodiment for controlling the 
access right the system will be implemented flexibly so 
that when manufacturing the device it can be equipped 
with the code of one conditional access system or sev- 
eral systems, that have the possibility not only to control 25 
the access right but also to change the codes that entitle 
to control the access rights. In other words, with help of 
the control systems included in the list to be feeded to 
the receiver when manufacturing, it is possible to add or 
remove codes of new conditional access systems, that 30 
is to change the list, whereas the list according to the first 
embodiment remains unchanged. 

According to one characteristic of the invention it is 
used a separate part to be attached to the receiving 
device, the so called security module. In addition to the 35 
above mentioned lists it can include other electronic 
parts concerning the security like the parts required for 
decrypting the bit stream encryption. In addition to the 
decryption circuit, also the microprocessor of the 
receiver can be placed in it. An advantage of the security 40 
module is that if there appears to be a security risk, e.g. 
in connection with a wide illegal copying, the module can 
be changed to a new one in regard to its construction or 
contents- If necessary the module can be constructed 
according to the receiving device so that it does not cor- 45 
respond to any standard. For the security this is a more 
effective alternative than only to change the smart card. 
Thereby the receiver can be used without or with the 
security module so that when receiving a certain service 
the decryption of messages is effected by the security so 
module only the receiver only or by the security module 
and the receiver together. Information of the required 
combination will be placed in the respective tables of the 
decoder and/or the module 

In the following the present invention will be ss 
described in more detail with reference to the enclosed 
drawings, where 
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illustrates the construction of a 
PES packet 

illustrate the construction of a pro- 
gram stream 

illustrate the construction of a 
transport stream 

illustrates contents of successive 
packets of a transport stream 
illustrates the construction of a 
receiver according to the invention 
illustrates a list of algorithms 
illustrates a list of conditional 
access systems 



Figures 1 to 3 have already been reported in the general 
part. The transport stream of figure 3a is also shown in 
figure 4 that illustrates a part of a typical transport 
stream. It consists of successive packets presented one 
below the other, the construction of which in respect of 
the basic syntax is alike. Each packet includes a header 
part (HEADER) according to standard MPEG2 and an 
information part (PAYLOAD). By the included information 
the packets can be groupped to video packets (VIDEO), 
audio packets (AUDIO), packets transmitting the control 
system of the conditional access system (CA_CTR 
MESSAGE) and packets of the authorization message 
of the conditional access system. From these the video 
and audio parts include video and audio information 
compressed and encrypted in a way characteristic of 
each conditional access system. As the video and audio 
information are encrypted on the level of the bit stream 
by using the different keys, the encryption of them is pre- 
sented in the figure by the separate keys. VIDEO_KEY 
means the encryption of the video packet and corre- 
spondingly AUDIO_KEY encryption of the audio packet. 
On the other hand the CA_CTRL MESSAGE packet in 
the middle of the bit stream describes packets meant for 
transmitting the control messages of the conditional 
access system and the CA_AUTH MESSAGE packet 
describes the authorization messages sent by the con- 
ditional access system, including certain parts relating 
to the construction of the address field of the receiver. 
These parts are common for all conditional access sys- 
tems. These two last-mentioned packets are also 
encrypted with their own encryption keys, which are 
characteristic of each conditional access system. The 
encryption can be effected through a program and by 
using totally different algorithms than for encryption on 
the level of the bit stream. 

Figure 5 illustrates a decoder 51 according to the 
present invention with a separate security module (52) 
according to the present invention attached thereto. The 
both of them are placed in the receiver, whereby the func- 
tions included in the decoder and security module have 
been assembled already when manufacturing. The both 
include two kinds of tables: 1) numerous conditional 
access system tables 53 (CA_system info table) and 2) 
a control table of conditional access systems 54 
(CA_system control list). The conditional access system 
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table 53 includes an algorithm list 55 (algorithm list) and 
a version list of conditional access systems 56 
(CA_version list). The algorithm list 55 includes a list of 
encryption algorithms eventually in use, by which the 
messages of the conditional access system have been 5 
encrypted. Correspondingly, the version list 56 includes 
a list of the versions of the respective conditional access 
system 53 that can be in use, whereas the control list of 
the conditional access systems 54 includes a list of those 
conditional access systems by which the rights of use of w 
conditional access systems can be changed. As accord- 
ing to the basic idea of the invention one conditional 
access system or several systems get the right to control 
other conditional access systems, the list of these control 
systems having more rights is thus included in the control /5 
table 54. 

Figure 6 A shows the contents of the algorithm list 
55 of figure 5. In consists of two adjacent lists relating to 
the actual algorithm list ALGORITHM, the first list OWN 
SEL for the own use of the conditional access system 20 
and the other list CTRL_SYS SELECTION for the control 
system of the conditional access systems. The column 
marked with X means that the respective algorithm is in 
use. E.g. algorithm ALG#2 is in use of the control system 
of conditional access systems whereas algorithms 25 
ALG#1 and ALG#3 are as well in the own use of the con- 
ditional access system as in use of the control system of 
the conditional access systems. The algorithm selection 
part ALG_SELEGTION on the bottom of the list is adjust- 
able by the control system. That means that the algo- 30 
rithms are selected either by the control system or by the 
conditional access system but the decision between 
these two alternatives will be made by the control system 
of the conditional access systems. The control system 
can e.g. let the conditional access system 35 
CA_SYSTEM#1, figure 5. decide, that the algorithm 
ALG#3 will be used for encrypting the messages trans- 
mitted by it. In the situation of figure 6A the value of the 
selection part ALG_SELECTION is CTRL_SYS, in 
which case the algorithms are selected by the control 40 
system. 

Correspondingly figure 6B shows the contents of the 
version list 56 of figure 5 in more details. The figure illus- 
trates the version table of conditional access systems 
CA_VERSION LIST that has a separate column 45 
OWN_SEL for the conditional access system and a sep- 
arate column CTRL_SYS SELECTION for the control 
system of the conditional access systems. Like in figure 
6A there is a choice made by the control system between 
the conditional access system and the control system on so 
the bottom of the list. The version is selected either by 
the control system or the conditional access system but 
the decision which of them can choose, is made by the 
control system of the conditional access systems. The 
control system can e.g. let the conditional access system 55 
CA_SYSTEM#1. figure 5. decide, that the version 
VER#1 of the conditional access system will be used. In 
addition to different versions of the conditional access 
systems, the version system includes also programming 



141 A2 




differences between the different versions, so that this 
selection provides also the selection of different program 
versions in addition to the versions of the conditional 
access system. In the situation of figure 6B the value of 
the selection part VER_SELECTION is CTRL_SYS. so 
that the version is selected by the control system, which 
means that either version VER#1 or VER#3 can be 
selected for the use of the conditional access system. 

Figure 7 shows the contents of the control table 54 
of the conditional access systems of figure 5 
(CA_SYSTEM CONTROL LIST). There Is a list of pos- 
sible conditional access systems SYS#1 SYS#n in 

two columns, first of which, GA_SYS IN USE. gives the 
conditional access systems in use, in figure the systems 
1 . 3. 5 are in use, and the oiner CA_SYS NOT IN USE 
gives the conditional access systems the use of which 
absolutely has to be prevented, in figure the systems 2, 
4 and 6, etc. In addition, the table includes a third column 
CONTROL CA_SYSTEM IN USE. where those condi- 
tional access systems are listed that act as control sys- 
tems. This list needs the security arrangements so that 
at least one control system remains valid when manu- 
facturing and can't be removed from the list. The lists 
CA_SYSTEM IN USE and CA_SYSTEM NOT IN USE 
also include the information, which security mod- 
ules/smart cards can be attached to the receiver in ques- 
tion and correspondingly in case of a security module 
there is also the information, which receiver system the 
security module can be attached to (this information Is 
not shown in figure 7). In this way a situation where a 
particular receiver can only be equipped with desired 
security modules or smart cards can be controlled. 

In the following reference is made again to figure 5, 
and the security module 52 used together with the smart 
card in the receiver is described in more details. The 
security module 52 includes matters from the same 
points of view as the tables of the decoder 53, but the 
tables included in the security module and the decoder 
do not have to have anything in common but the tables 
can include quite different things than the corresponding 
table of the decoder. If there appears to be a security 
risk, e.g. in connection with a wide piracy, the security 
module can be changed to a new one in regard to its 
construction or contents, whereby the illegal copying can 
be prevented or made more complicated and thus a safe 
system guaranteed. As the known smart cards are 
standardized in respect of the connection and can be 
easily distributed e.g. by mail, the security risk of the 
smart card is bigger compared with the security modules 
that are bigger in size. A separate security module can 
be constructed so that the connection with the device, 
unlike the same with the smart card, is not in accordance 
with any standard, whereby there is no use of examining 
a security module of one device manufacturer in respect 
of piracy or for examining a security module of some 
other manufacturer. Further, the security module can 
include such ASIC circuits the Illegal copying of which is 
difficult, because the function of it can be very compli- 
cated. 
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The security module according to the invention is a 
releasable module that is connected with the device itself 
through a connector When speaking about a security 
module containing more than just a smart card, it means 
a module with a muttipole connection (depending on the 5 
application) with the receiver. This kind of security mod- 
ule can contain in principle the same kind of electronics 
known by the present technology e.g. in receiving 
devices. As the physical size of the security module or 
the electronics included therein is not limited like in case w 
of the smart card (bending, thickness of the card etc.) 
electronic security parts can be placed in it. e.g. for the 
transmission of digital signals, parts for decrypting the 
bit stream encryption. As on the other hand it can be 
complicated to make a connection between the micro- 15 
processor and the decryption circuit of the bit stream 
encryption, safe enough from the point of view of the 
security, these parts can be placed in the security mod- 
ule as well, if necessary In addition to these measures 
it is the purpose to construct the security module so that 20 
it would be as difficult as possible to examine the parts 
of it with electronic equipment. 

As mentioned earlier, the security module includes 
tables with the same construction as the decoder 
According to the idea of the security module, however, 25 
the information included in it differs from what has been 
set usually in the decoder by the manufacturing. There- 
with it is possible to add new conditional access systems 
and encryption algorithms for the receiver and to make 
illegal copying more difficult. A separate security module 30 
and a smart card attached thereto can both include said 
tables, but as concept and to make matters more simple 
the above mentioned cases have all been combined in 
the concept of the security module. Thus the tables of 
the security module can be a combination of tables of a 35 
separate module and a separate smart card. The mean- 
ing of the tables is to manage situations, where the 
receiver is intended for receiving transmissions control- 
led by different conditional access systems. 

The receiver can be used either without or with a 40 
security module, so that for receiving a certain service 
the messages are decrypted a) with the security module 
only, b) with the receiver only or c) with the security mod- 
ule and the receiver together The information about the 
required combination is placed in some tables of the 45 
decoder and/or the security module. 

The system as well as the receiver and the security 
module according to the present invention provide a 
transmission and receiving system of video, audio and 
data services, that is easier to be controlled and that at so 
the same time makes the illegal receiving of encrypted 
services more difficult. 

Claims 

55 

1 . A system for controlling different conditional access 
systems sending video, audio and data services to 
the receivers entitled to receive said services, 
wherein each conditional access system encrypts 



41 A2 




the service to be transmitted, sends encrypted the 
decryption keys required in the receiver and sends 
the authorization messages that include at least 
information about those programs that the receiver 
is entitled to decrypt, characterized in that at least 
one of the conditional access systems is nominated 
to control system entitled to control the encryption 
algorithms used by other conditional access sys- 
tems and the sending of keys and authorization 
messages, whereby the control system can change 
rights of use of other conditional access systems in 
the receiver 

2. A system in accordance with claim 1 , characterized 
in that with said at least one control system also con- 
trol systems can be controlled, whereby said control 
system can be used for nominating new control sys- 
tems and removing those. 

3. A receiver for receiving video, audio and data serv- 
ices, said receiver comprising a decoder (51) for 
receiving encrypted video, audio ad data services 
and decrypting the encryption, characterized in that 
said decoder (51) comprises 

tables (53) relative to different conditional 
access systems, each including an algorithm list 



(55) used by the conditional access system, ''"^ 

said list consisting of encryption algorithms in 

use, by which the messages and services of the f 

conditional access system have been i% 

encrypted, ^^.m 

control table (54) of conditional access systems 

including a list of control systems. .^.^^ 



4. A receiver in accordance with claim 3. character- 
ized in that it comprises a detachable security mod- 

ule (52) also including r,4f 

tables (53) relative to different conditional 
access systems, each including an algorithm list 
(55) used by the conditional access system, 
said list consisting of encryption algorithms in 
use, by which the messages and services of the 
conditional access system have been 
encrypted, 

control table (54) of conditional access systems 
including a list of control systems. 

5. A receiver in accordance with claim 3 or 4, charac- 
terized in that each table (53) relative to the condi- 
tional access system further includes a version list 
(56) of the conditional access system including a list 
of those versions of the respective conditional 
access system (53), that are in use. 

6. A receiver in accordance with claim 3 or 4, charac- 
terized in that each algorithm of the algorithm list 
(55) has a first information (OWN SEL) telling if the 



7 



BNSDOCID:<EP 0696141A2> 




EP 0 696 



algorithm is in the own use of the conditional access 
system, and an other information (CTRL_SYS 
SELECTION) telling, if the algorithm is in use of the 
control system. 

7. A receiver in accordance with claim 6, character- 
ized in that the control system decides, if the algo- 
rithm is selected by the control system or the 
conditional access system. 

8. A receiver in accordance with claim 5, character- 
ized in that each version of the conditional access 
system (53) mentioned in the version list (56) of the 
conditional access system has a first information 
(OWN SEL) telling, if the version can be selected for 15 
use of the conditional access system by the condi- 
tional access system, and an other information 
(CNTRL_SYS SELECTION) telling if the version 
can be selected for use of the conditional access 
system by the control system. 20 

9. A receiver in accordance with claim 3 or 4, charac- 
terized in that the control system decides, if the ver- 
sion will be selected by the control system or the 
conditional access system. 25 

10. A receiver in accordance with claim 3 or 4, charac- 
terized in that the control table (54) of conditional 
access systems includes a first list (CA_SYSTEM 
NOT IN USE) indicating those corxditional access 30 
systems that are not in use of the receiver, and an 
other list (CA_SYSTEM IN USE) Indicating those 
conditional access systems that are in use of the 
receiver. 

35 

1 1 . A receiver in accordance with claim 3, 4 or 1 0. char- 
acterized in that the control table (54) of the condi- 
tional access systems includes a list (CONTROL 
CA_SYSTEM IN USE) indicating the conditional 
access systems acting as control systems. 40 

12. A receiver in accordance with claim 11, character- 
ized in that said list of control systems comprises a 
security system to secure that at least one control 
system is such that it cannot be removed from the 45 
list. 

1 3. A receiver in accordance with claim 3 or 4, charac- 
terized in that the information included in the tables 

of the conditional access systems (53) and the infor- so 
mation included in the control table (54) of the con- 
ditional access system are recorded in the receiver 
when the receiver is manufactured. 

14. A receiver in accordance with claim 13, character- 55 
ized in that the information included in the tables of 
the conditional access systems (53) and the infor- 
mation included in the control table (54) of the con- 
ditional access system can be updated with the 
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encrypted messages received together with the 
received data. 

15. A receiver in accordance with claim 13, character- 
ized in that the information of the tables of the con- 
ditional access systems (53) and the information of 
the control table (54) of the conditional access sys- 
tem can be updated with a smart card to be con- 
nected with the receiver. 

16. A receiver in accordance with claim 15. character- 
ized in that it has a connection for connecting the 
smart card with the security module (52). 

17. A receiver In accordance with claim 4, 15 or 16, 
characterized in that the receiver (51) includes an 
information of. which kind of security modules and 
smart cards can be connected with it. 

18. A receiver in accordance with any of the claims 3 to 
17, characterized in that when receiving a certain 
type of service, only information saved in the 
receiver (51) is used for decrypting messages. 

1 9. A receiver in accordance with any of the claims 3 to 
17. characterized in that when receiving a certain 
type of service, only information saved in the secu- 
rity module (52) is used for decrypting messages. 

20. A receiver in accordance with any of the claims 3 to 
17, characterized in that when receiving a certain 
type of service, information saved both in the secu- 
rity module (52) and in the receiver (51) is used for 
decrypting messages. 

21. A releasable security module (52) for a receiver 
receiving video, audio and data services, consisting 
of a decoder (51) for receiving encrypted video, 
audio and data services and for decrypting the 
encryption, said security module Including informa- 
tion for the decoder for decrypting the encrypted 
service, characterized in that it comprises 

tables (53) relative to different conditional 
access systems, each table including an algo- 
rithm list (55) used by the conditional access 
system, said algorithm list including a list of 
encryption algorithms in use. by which the mes- 
sages and services have been encrypted, 
a control table (54) of conditional access sys- 
tems including a list of control systems. 

22. A security module in accordance with claim 21, 
characterized in that it has the information of, which 
kind of receiver it can be connected with. 



8 



BNSDOCID:<EP 06961 41 A2> 



EP0 696 141 A2 



HEADER 



PACKET START 






OPTIONAL 






STREAM 


PES-PACKET 


PES 


STUFFING 


PES-PACKET 


CODE PREHX 


[D 


LENGHT 


HEADER 


BYTES 


DATA BYTES 



FIG. 1 



PACK 




HEADER 


PACK 1 



PACK 






PACK 


PACKn 


HEADER 


PACK 2 




HEADER 



MPEG 
program 
end ccxle 



FIG. 2 a 



PACK 


01 


SYSTEM 


PROGRAM 


SYSTEM 


PES-PACKET 


PES-PACKET 




PES-PACKET 


START 


CLOCK 


MUX 


HEADER 


#1 


#2 


• 


#n 


CODE 




REFERENCE 


RATE 







FIG. 2 b 



1^ 



188 bytes 



HEADER 


PAYLOAD 




HEADER 


PAYLOAD 




HEADER 


PAYLOAD 








FIG, 3 a 


sync 
byte 


transport 

error 

indicator 


pay load 
unit start 
indicator 


transport 

srambbng 

control 


transport 
priority 


FID 


adaptation 

field 

control 


continuity 
counter 


adaptation 
field 


PAYLOAD 



FIG. 3 b 



BNSDOCIDkEP 0696141A2> 



9 



EP 0 696 141 A2 



VIDEO 



VIDEO 



HEADER 



PAYLOAD (VIDEO_KEY-salaus) 



HEADER 



PAYLOAD (VIDEO_KEY-salaus) 



AUDIO 



HEADER 



PAYLOAD (AUDIO_KEY-salaus) 



AUDIO 



HEADER 



PAYLOAD (AUDIO_KEY-salaus) 



VIDEO 



CA_CTRL 
MESSAGE 



VIDEO 



AUDIO 



AUDIO 

CA_AUTH 
MESSAGE 



VIDEO 



HEADER 



HEADER 



HEADER 



HEADER 



HEADER 



HEADER 



HEADER 



PAYLOAD (VIDEO_KEY-salaus) 



PAYLOAD (CTRL_KEY-salaus) 



PAYLOAD {VIDEO_KEY-salaus) 



PAYLOAD (AUDIO_KEY-salaus) 



PAYLOAD (AUDIO_KEY-salaus) 



PAYLOAD (AUTH_KEY-salaus) 



PAYLOAD {VIDEO_KEY-salaus) 



FIG. 4 



BNSDOCID: <EP 0696141A2> 



10 



EP0 696 141 A2 



53 

4 



55 



56 



54 



CA_SYSTEM #1 
INFO TABLE 



ALGORITHM 
LIST 



CA_VERSION 
LIST 



CA_SYSTEM 
CONTROL 
LIST 



CA_SYSTEM #2 
INFO TABLE 



ALGORITHM 
LIST 



CA_VERSION 
LIST 



DECODER 



51 



52 



I 



SECURITY 
MODULE 



CA_SYSTEM #1 
INFO TABLE 



CA_SYSTEM #2 
INFO TABLE 



CA_SYSTEM 

CONTROL 

LIST 



FIG. 5 



11 



5NSDOCID:<EP 0696141 A2> 




CA SYSTEM INFO TABLE. 
ALGORITHM LIST 


ALGORITHM 


OWN 

SEL 


CTRL_SYS 
SELECTION 


ALG #1 


X 


X 


ALG #2 




X 


ALG #3 




X 


• 
• 
• 
• 






ALG_SELEC" 


noN 


CTRL_SYS 



FIG. 6 A 



56 



CA SYSTEM INFO TABLE, 
CA_VERSION LIST 


CA SYSTEM 
VERSION 


OWN 
SEL 


CTRL SYS 
SELECTION 


VER#1 


X 


X 


VER#2 






VER #3 




X 


• 
• 
• 
• 






VER_SELECTION 


CTRL_SYS 



FIG. 6 B 



12 




CA_SYSTEM CONTROL LIST 


OA SYSTEM 


CA SYSTEM 


CONTROL 


IN USE 


NOT IN USE 


CA_SYSTEM IN USE 


SYS#1 


SYS #2 


SYS #1 


SYS #3 


SYS #4 


SYS #5 


SYS #5 


SYS #6 




• 
• 
• 
• 


• 
• 
• 
• 


• 
• 
• 
• 



FIG. 7 



NSOOCID: <EP 0696141A2> 



13 




THIS PAGE BLAf^K (uspto) 



(19) 



J 




(12) 



Europai^^B Patentamt 
European Patent Office 
Off ice europeen des brevets (11) EP 0 696 141 A3 

EUROPEAN PATENT APPLICATION 



(88) Date of publication A3: 

05.02.1997 Bulletin 1997/06 


(51) Int C| 6 H04N 7/167 


(43) Date of publication A2: 

07.02.1996 Bulletin 1996/06 




(21) Application number: 951 11375.2 




(22) Date of filing: 20.07.1 995 




(84) Designated Contracting States: 
DE FR GB IT 


(71 ) Applicant: NOKIA TECHNOLOGY GmbH 
75175 Pforzheim (DE) 


(30) Priority: 01.08.1994 Fl 943582 


(72) Inventor: Kangas, Mauri 
FIN-21530 Paimio (Fl) 



(54) System for controlling different conditional access systems sending video, audio and data 
services and a receiver to be used in the system 



CO 
< 



(57) The present invention relates to a system for 
controlling different conditional access systems sending 
video, audio and data services to the receivers entitled 
to receive said services, wherein each conditional 
access system encrypts the service to be transmitted, 
sends encrypted the decryption keys required in the 
receiver and sends the authorization messages. At 
least one of the conditional access systems is nomi- 
nated to control system entitled to control the encryption 
algorithms used by other conditional access systems 
and the sending of keys and authorization messages, 
whereby the control system can change rights of use of 
other conditional access systems in the receiver. The 
invention also relates to a receiver to be used in the sys- 
tem, consisting of a decoder (51) for receiving video, 
audio and data services and for decrypting the encryp- 
tion, said decoder including tables (53) relating to the 
different conditional access systems, each of the tables 
including an algorithm list (55) used by the conditional 
access system, said list including the encryption algo- 
rithms in use for encryption of the messages and serv- 
ices of the conditional access system. Further, the 
decoder (51) comprises a control table (54) of the con- 
ditional access systems including a list of the control 
systems. In order to get the encryption information the 
receiver can be equipped with a releasable security 
module (52) the tables of which have the same kind of 
structure as the decoder (51 ). 
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